This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.mft File: r39NEPAZQ0EHs7XcU6yakZjFxH0.mft (raw, json) Hash identifier: mPnurDxYWe9PjdGeDPJOGBVWZbdBaObCqCLh/YjkZl8= Subject key identifier: E2:80:90:DB:65:3C:C9:D4:0E:D4:DE:99:E8:82:41:29:41:B1:4C:9E Authority key identifier: AF:7F:4D:10:F0:19:43:41:07:B3:B5:DC:53:AC:9A:91:98:C5:C4:7D Certificate issuer: /CN=af7f4d10f019434107b3b5dc53ac9a9198c5c47d Certificate serial: 019C41D8868E0C27B8E4796B5735654719BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r39NEPAZQ0EHs7XcU6yakZjFxH0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.mft Manifest number: 0FFE Signing time: Mon 09 Feb 2026 10:00:35 +0000 Manifest this update: Mon 09 Feb 2026 10:00:35 +0000 Manifest next update: Tue 10 Feb 2026 10:00:35 +0000 Files and hashes: 1: r39NEPAZQ0EHs7XcU6yakZjFxH0.crl (hash: h5ih1TrxS3p0NEoIv9J5Af9B6OYJtdOgAQcV4AMnYos=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.mft rsync://rpki.ripe.net/repository/DEFAULT/r39NEPAZQ0EHs7XcU6yakZjFxH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:86:8e:0c:27:b8:e4:79:6b:57:35:65:47:19:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af7f4d10f019434107b3b5dc53ac9a9198c5c47d Validity Not Before: Feb 9 10:00:35 2026 GMT Not After : Feb 10 10:00:35 2026 GMT Subject: CN=e28090db653cc9d40ed4de99e882412941b14c9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:64:2e:1a:88:be:76:6c:49:c8:52:f9:e9:4c: d7:78:5e:88:2f:18:10:c9:64:41:87:41:42:35:1f: 24:a6:22:d7:16:77:14:6c:48:a3:3b:1b:bc:49:77: 48:de:8b:5e:5a:6d:46:f6:62:8f:cd:c6:4b:fd:ef: 0f:15:77:c9:10:e6:81:37:2b:33:2f:c2:76:d1:5b: a8:d8:64:f1:50:a0:0e:2b:03:81:cb:9e:b2:52:e6: 26:31:10:5a:b5:04:1a:2d:74:d3:e3:d7:66:c7:3a: 07:48:7a:d8:1b:b3:9a:26:fc:69:f9:7a:7e:20:06: 8d:d6:f1:af:0d:f0:5d:ac:79:ce:96:12:56:37:31: f5:cd:05:fb:c5:b3:71:ab:f4:e6:58:14:75:6d:55: 22:46:64:bd:f5:c1:2c:f3:ef:31:95:b9:22:d9:ba: 67:6f:3b:92:0b:e5:05:4d:89:be:b7:e5:92:05:7b: 6d:c4:7a:7c:4f:d2:4a:94:d6:c3:6b:07:a1:81:9f: 47:0e:5a:4b:a8:48:ed:98:e7:6b:ae:87:df:a8:18: 18:82:9f:98:45:74:9f:b3:36:31:d8:ad:71:4a:b7: 9f:c7:46:bb:c5:b0:2d:c4:51:00:ab:90:9c:e3:b0: eb:7a:b8:88:ca:a3:af:17:0b:f8:8e:68:7d:04:24: 19:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:80:90:DB:65:3C:C9:D4:0E:D4:DE:99:E8:82:41:29:41:B1:4C:9E X509v3 Authority Key Identifier: keyid:AF:7F:4D:10:F0:19:43:41:07:B3:B5:DC:53:AC:9A:91:98:C5:C4:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r39NEPAZQ0EHs7XcU6yakZjFxH0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d2749d-f773-471a-aca3-618d95fe3901/1/r39NEPAZQ0EHs7XcU6yakZjFxH0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:30:4e:05:33:cf:e2:f6:89:b8:1c:35:45:fc:a2:83:e6:95: 91:f2:ac:22:a7:ba:b3:cd:92:8f:ba:38:2c:f2:58:42:9f:60: 72:9d:ac:ab:16:85:ae:ae:3b:11:a4:a6:6b:17:27:84:f1:31: 1d:72:e9:21:68:c7:eb:f3:94:ae:3f:c5:85:2f:f1:29:de:77: 22:c3:c1:a2:cc:e3:b4:e0:14:1f:8a:08:89:21:5c:2a:b5:d3: 4e:dd:cd:c7:32:b1:1d:44:32:af:8d:99:26:4f:30:80:6f:25: b8:00:e0:ab:d3:59:a3:9a:e5:ad:87:60:21:92:d8:be:33:6c: eb:9e:9f:7e:90:8b:70:e8:21:18:8b:d7:e0:cf:09:ea:5d:4e: 15:7b:f1:c3:cd:cf:e9:90:de:f2:1d:43:00:33:8f:a1:77:e1: d5:81:36:9b:46:42:73:f5:99:19:0b:5d:c4:da:4c:3f:36:2d: e6:7a:80:92:52:72:e0:cf:ec:da:30:48:85:5a:08:fc:4c:be: b5:65:a4:62:07:b5:d8:5e:45:78:77:fb:68:77:5c:70:b7:b8: 33:2a:fc:de:6f:8f:0c:07:c2:b4:2b:a5:03:8e:6b:8b:03:2c: ce:32:1b:22:64:6e:69:84:13:6d:6e:bc:ac:7d:c4:29:99:49: e2:3f:55:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2IaODCe45HlrVzVlRxm/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmN2Y0ZDEwZjAxOTQzNDEwN2IzYjVkYzUzYWM5YTkxOThj NWM0N2QwHhcNMjYwMjA5MTAwMDM1WhcNMjYwMjEwMTAwMDM1WjAzMTEwLwYDVQQD EyhlMjgwOTBkYjY1M2NjOWQ0MGVkNGRlOTllODgyNDEyOTQxYjE0YzllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiWQuGoi+dmxJyFL56UzXeF6ILxgQ yWRBh0FCNR8kpiLXFncUbEijOxu8SXdI3oteWm1G9mKPzcZL/e8PFXfJEOaBNysz L8J20Vuo2GTxUKAOKwOBy56yUuYmMRBatQQaLXTT49dmxzoHSHrYG7OaJvxp+Xp+ IAaN1vGvDfBdrHnOlhJWNzH1zQX7xbNxq/TmWBR1bVUiRmS99cEs8+8xlbki2bpn bzuSC+UFTYm+t+WSBXttxHp8T9JKlNbDawehgZ9HDlpLqEjtmOdrroffqBgYgp+Y RXSfszYx2K1xSrefx0a7xbAtxFEAq5Cc47DreriIyqOvFwv4jmh9BCQZcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOKAkNtlPMnUDtTemeiCQSlBsUyeMB8GA1UdIwQY MBaAFK9/TRDwGUNBB7O13FOsmpGYxcR9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjM5TkVQQVpRMEVIczdYY1U2eWFrWmpGeEgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9kMjc0OWQtZjc3My00NzFhLWFjYTMt NjE4ZDk1ZmUzOTAxLzEvcjM5TkVQQVpRMEVIczdYY1U2eWFrWmpGeEgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9kMjc0OWQtZjc3My00NzFhLWFjYTMtNjE4ZDk1ZmUzOTAx LzEvcjM5TkVQQVpRMEVIczdYY1U2eWFrWmpGeEgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYTBOBTPP 4vaJuBw1Rfyig+aVkfKsIqe6s82Sj7o4LPJYQp9gcp2sqxaFrq47EaSmaxcnhPEx HXLpIWjH6/OUrj/FhS/xKd53IsPBoszjtOAUH4oIiSFcKrXTTt3NxzKxHUQyr42Z Jk8wgG8luADgq9NZo5rlrYdgIZLYvjNs656ffpCLcOghGIvX4M8J6l1OFXvxw83P 6ZDe8h1DADOPoXfh1YE2m0ZCc/WZGQtdxNpMPzYt5nqAklJy4M/s2jBIhVoI/Ey+ tWWkYge12F5FeHf7aHdccLe4Myr83m+PDAfCtCulA45riwMszjIbImRuaYQTbW68 rH3EKZlJ4j9VTQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:01:13 2026 by rpki-client